Vulnerabilities > CVE-2021-29779 - Unspecified vulnerability in IBM Qradar Security Information and Event Manager

CVSS 5.9 - MEDIUM

Attack vector

NETWORK

Attack complexity

HIGH

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

network

high complexity

ibm

NVD

Published: 2021-12-01

Updated: 2022-06-28

Summary

IBM QRadar SIEM 7.3 and 7.4 could allow an attacker to obtain sensitive information due to the server performing key exchange without entity authentication on inter-host communications using man in the middle techniques. IBM X-Force ID: 203033.

Vulnerable Configurations

Part	Description	Count
Application	Ibm IBM Qradar Security Information AND Event Manager 7.3.0 IBM Qradar Security Information AND Event Manager 7.3.1 IBM Qradar Security Information AND Event Manager 7.3.2 IBM Qradar Security Information AND Event Manager 7.4.0 IBM Qradar Security Information AND Event Manager 7.4.1 IBM Qradar Security Information AND Event Manager 7.4.2 IBM Qradar Security Information AND Event Manager 7.3.3 IBM Qradar Security Information AND Event Manager 7.4.3	51
OS	Linux Linux Linux Kernel -	1

Summary

Vulnerable Configurations

References